With the 2016 tax filing season fast approaching, and in this month of October where we celebrate National Cyber Security Awareness Month, we wanted to take the time to reiterate Intuit’s® value on the security and privacy of our customers.
Fraudsters are always attempting to steal customer data via numerous methods – one of these methods being phishing. Phishing is an attempt to steal personal information, such as usernames, passwords and credit card details, by masquerading as a trusted person or entity in an electronic communication, such as email.
Recently, there have been a number of emails that have been sent to our customers with the intent to steal information from unsuspecting users. We wanted to take the time to point out a few common methods for spotting these malicious emails:
- Fake links. Many malicious phishing emails will request that you access or update your account via a link embedded in the message. An easy way to spot if the link is fake is to hover your mouse over it, but do not click. Look at the bottom of your browser to confirm if the link will take you to the destination that the email states it will.
- Spoofed email address. Phishers will often send emails using forged or stolen emails addresses. Never reply to unsolicited email addresses and never open any attachments they may contain. Make sure to look out for misspellings, graphical anomalies or if the email threatens you with account closure, if a condition isn’t met – these could potentially be signs of a targeted phishing attempt.
- False Websites. If you feel that an email may be malicious, never click on the link provided in the email. If you feel you need to check on the security of your account or bank information, do not use the link provided in the malicious email to direct you to your destination site. Manually type in the destination URL into the address field on your browser.
While we value your privacy and security, and strive to update all our customers about account happenings, keep in mind that there are certain methods that Intuit will not do:
- We will never send you an email asking you for login or password information to be sent to us.
- We will never ask you for your banking information or credit card information in an email. Also, we will never ask you for confidential information about your employees in an email.
- We will never send you an email with a “software update” or “software download” attachment.
What Intuit will do:
- We will provide you with instructions on how to stay current with your Intuit product, as well as information on how to securely download an update to your computer.
- If we need you to update your account information, we will request that you do so by logging into your account.
At Intuit, we are also helping our ProAdvisors®, ensuring the privacy of their email addresses, as well as protecting their email inbox from scammers. Effective immediately, your email address on Find-A-ProAdvisor will no longer be able to be copied by anyone.
Also, you now have the option to hide your email address from the Find-A-ProAdvisor directory altogether. To do so, follow this simple process:
- Log in to your ProAdvisor tab
- Click on the Profile tab
- Scroll down to the “Privacy” section
- Uncheck the “Publish email address” option
If you suspect you have received a phishing email using Intuit as the vehicle for the phish, please visit https://security.intuit.com/security-alerts.php. Intuit posts all known phishes that fraudulently use the Intuit brand.
If you find a similar email posted, you can delete the email you received; however, if you do not find a similar email, please forward it immediately to email@example.com. We will look into each reported instance.
For more information or to learn how to better protect yourself, please visit security.intuit.com.
One Stop with these Quick Links
There are many other tips and perspectives that cover this very important topic. Here are some great articles to help you: